[09/Feb/2023:01:00:14 +0100] 176.58.125.17 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "-" -
[09/Feb/2023:01:01:01 +0100] 176.58.125.17 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "-" -
[09/Feb/2023:01:06:56 +0100] 34.76.96.55 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[09/Feb/2023:04:58:45 +0100] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerschein_04062022.zip HTTP/1.1" 427
[09/Feb/2023:06:16:37 +0100] 185.142.236.40 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[09/Feb/2023:06:17:03 +0100] 185.142.236.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[09/Feb/2023:06:17:04 +0100] 185.142.236.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[09/Feb/2023:06:17:05 +0100] 185.142.236.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[09/Feb/2023:06:17:09 +0100] 185.142.236.40 TLSv1.2 AES256-SHA "quit" 379
[09/Feb/2023:06:17:10 +0100] 185.142.236.40 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 393
[09/Feb/2023:06:17:11 +0100] 185.142.236.40 TLSv1.2 AES256-SHA "GET /sitemap.xml HTTP/1.1" 394
[09/Feb/2023:06:17:17 +0100] 185.142.236.40 TLSv1.2 AES256-SHA "GET /.well-known/security.txt HTTP/1.1" 407
[09/Feb/2023:06:17:19 +0100] 185.142.236.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.1" 309
[09/Feb/2023:06:17:23 +0100] 185.142.236.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[09/Feb/2023:06:41:44 +0100] 183.136.225.32 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[09/Feb/2023:06:42:32 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Feb/2023:06:42:56 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[09/Feb/2023:06:43:20 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[09/Feb/2023:06:52:29 +0100] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerschein_03062022.zip HTTP/1.1" 427
[09/Feb/2023:06:54:52 +0100] 54.36.149.105 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /robots.txt HTTP/1.1" 315
[09/Feb/2023:06:54:54 +0100] 54.36.148.114 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 308
[09/Feb/2023:07:32:07 +0100] 50.84.134.206 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm_03062022.zip HTTP/1.1" 394
[09/Feb/2023:07:36:07 +0100] 198.199.95.17 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Feb/2023:07:44:48 +0100] 192.241.194.38 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328
[09/Feb/2023:08:47:52 +0100] 128.14.134.170 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Feb/2023:11:36:36 +0100] 193.235.141.7 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 295
[09/Feb/2023:11:59:04 +0100] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /klub_29052022.zip HTTP/1.1" 403
[09/Feb/2023:12:00:27 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[09/Feb/2023:12:00:28 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[09/Feb/2023:12:00:28 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 311
[09/Feb/2023:12:00:29 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 311
[09/Feb/2023:12:00:29 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 310
[09/Feb/2023:12:00:30 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 310
[09/Feb/2023:12:00:30 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 310
[09/Feb/2023:12:00:31 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 310
[09/Feb/2023:12:00:31 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 308
[09/Feb/2023:12:00:31 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 308
[09/Feb/2023:12:00:32 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /test.php HTTP/1.1" 306
[09/Feb/2023:12:00:32 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /test.php HTTP/1.1" 306
[09/Feb/2023:12:00:33 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /laravel/.env HTTP/1.1" 309
[09/Feb/2023:12:00:33 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /laravel/.env HTTP/1.1" 309
[09/Feb/2023:12:00:34 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /demo/.env HTTP/1.1" 307
[09/Feb/2023:12:00:34 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /demo/.env HTTP/1.1" 307
[09/Feb/2023:12:00:35 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /web/.env HTTP/1.1" 307
[09/Feb/2023:12:00:35 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /web/.env HTTP/1.1" 307
[09/Feb/2023:12:00:36 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /phpinfo HTTP/1.1" 307
[09/Feb/2023:12:00:36 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /phpinfo HTTP/1.1" 307
[09/Feb/2023:12:32:41 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm_29052022.zip HTTP/1.1" 394
[09/Feb/2023:12:47:35 +0100] 35.216.166.62 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 379
[09/Feb/2023:12:47:38 +0100] 35.216.166.62 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[09/Feb/2023:12:47:39 +0100] 35.216.166.62 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[09/Feb/2023:12:47:39 +0100] 35.216.166.62 TLSv1.2 AES256-SHA "GET /server-status HTTP/1.1" 308
[09/Feb/2023:12:47:39 +0100] 35.216.166.62 TLSv1.2 AES256-SHA "GET /config.json HTTP/1.1" 311
[09/Feb/2023:12:47:39 +0100] 35.216.166.62 TLSv1.2 AES256-SHA "GET /.env HTTP/1.1" 304
[09/Feb/2023:12:47:39 +0100] 35.216.166.62 TLSv1.2 AES256-SHA "GET /telescope/requests HTTP/1.1" 311
[09/Feb/2023:12:47:39 +0100] 35.216.166.62 TLSv1.2 AES256-SHA "GET /info.php HTTP/1.1" 307
[09/Feb/2023:12:51:07 +0100] 154.89.5.121 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[09/Feb/2023:13:35:14 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm_28052022.zip HTTP/1.1" 394
[09/Feb/2023:13:43:49 +0100] 213.32.122.82 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[09/Feb/2023:14:04:29 +0100] 104.131.163.245 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[09/Feb/2023:14:04:31 +0100] 104.131.163.245 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[09/Feb/2023:14:04:34 +0100] 104.131.163.245 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Feb/2023:14:05:01 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Feb/2023:14:10:35 +0100] 128.14.141.34 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Feb/2023:14:29:57 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[09/Feb/2023:14:31:51 +0100] 192.241.203.5 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[09/Feb/2023:15:20:21 +0100] 185.180.143.137 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Feb/2023:15:23:57 +0100] 103.167.92.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[09/Feb/2023:15:23:58 +0100] 103.167.92.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[09/Feb/2023:15:28:10 +0100] 139.59.37.187 TLSv1.2 AES256-SHA "GET /aaa9 HTTP/1.1" 304
[09/Feb/2023:15:28:14 +0100] 139.59.37.187 TLSv1.2 AES256-SHA "GET /aab8 HTTP/1.1" 304
[09/Feb/2023:15:54:28 +0100] 64.62.197.221 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Feb/2023:16:01:06 +0100] 64.62.197.216 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[09/Feb/2023:16:04:24 +0100] 64.62.197.224 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Feb/2023:16:05:10 +0100] 64.62.197.220 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[09/Feb/2023:16:27:41 +0100] 83.136.32.58 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.0" -
[09/Feb/2023:16:36:43 +0100] 141.98.10.56 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[09/Feb/2023:16:47:36 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "POST /mifs/.;/services/LogService HTTP/1.1" 318
[09/Feb/2023:16:52:21 +0100] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm_25052022.zip HTTP/1.1" 394
[09/Feb/2023:17:03:09 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /console/ HTTP/1.1" 307
[09/Feb/2023:17:24:49 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 315
[09/Feb/2023:17:32:07 +0100] 194.110.203.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /klub_24052022.zip HTTP/1.1" 403
[09/Feb/2023:17:50:57 +0100] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerschein_25052022.zip HTTP/1.1" 427
[09/Feb/2023:17:58:38 +0100] 141.98.10.56 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[09/Feb/2023:18:12:59 +0100] 182.92.117.8 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /tinyfilemanager.php HTTP/1.1" 413
[09/Feb/2023:18:45:43 +0100] 183.136.225.32 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[09/Feb/2023:18:52:12 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[09/Feb/2023:18:52:39 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[09/Feb/2023:18:56:04 +0100] 141.98.11.39 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[09/Feb/2023:19:35:12 +0100] 192.241.236.39 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[09/Feb/2023:19:36:45 +0100] 8.214.87.1 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Feb/2023:19:37:11 +0100] 8.214.87.1 - - "-" -
[09/Feb/2023:19:37:22 +0100] 8.214.87.1 - - "-" -
[09/Feb/2023:19:43:33 +0100] 185.179.218.114 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[09/Feb/2023:19:43:34 +0100] 185.179.218.114 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[09/Feb/2023:19:43:47 +0100] 198.12.231.234 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm_23052022.zip HTTP/1.1" 394
[09/Feb/2023:20:06:57 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /_ignition/execute-solution HTTP/1.1" 319
[09/Feb/2023:20:25:19 +0100] 23.251.102.74 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Feb/2023:20:42:41 +0100] 185.180.143.8 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Feb/2023:20:42:52 +0100] 185.180.143.8 TLSv1.2 AES256-SHA "HEAD /icons/sphere1.png HTTP/1.1" -
[09/Feb/2023:20:42:53 +0100] 185.180.143.8 TLSv1.2 AES256-SHA "HEAD /icons/.%%32%65/.%%32%65/apache2/icons/non-existant-image.png HTTP/1.1" -
[09/Feb/2023:20:57:51 +0100] 141.98.11.20 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[09/Feb/2023:22:17:50 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm_21052022.zip HTTP/1.1" 394
[09/Feb/2023:22:22:39 +0100] 162.142.125.211 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Feb/2023:22:22:43 +0100] 162.142.125.211 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[09/Feb/2023:22:26:14 +0100] 54.244.23.206 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[09/Feb/2023:22:27:13 +0100] 35.87.191.87 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[09/Feb/2023:22:28:51 +0100] 157.55.39.82 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 315
[09/Feb/2023:22:28:52 +0100] 157.55.39.82 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 315
[09/Feb/2023:22:29:03 +0100] 207.46.13.41 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[09/Feb/2023:23:04:30 +0100] 205.210.31.21 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 393
[09/Feb/2023:23:24:09 +0100] 101.68.211.2 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 381
[09/Feb/2023:23:41:47 +0100] 128.1.248.42 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Feb/2023:00:08:44 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Feb/2023:00:21:09 +0100] 8.214.87.1 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Feb/2023:00:21:35 +0100] 8.214.87.1 - - "-" -
[10/Feb/2023:00:21:46 +0100] 8.214.87.1 - - "-" -
[10/Feb/2023:00:22:34 +0100] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm_19052022.zip HTTP/1.1" 394
[10/Feb/2023:00:23:54 +0100] 109.107.166.170 - - "-" -